Lucene search
K

217 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.41 views

RHEL 6 : bison (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bison: use-after-free via crafted input file containing a NULL byte can lead to DoS CVE-2020-24240 - GNU...

6.1AI score0.01265EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 5 : bison (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bison: use-after-free via crafted input file containing a NULL byte can lead to DoS CVE-2020-24240 - GNU...

6.1AI score0.01265EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2024/02/09 3:4 p.m.4 views

elf-rss (>=2.5.0 <=2.5.4), gocqapi (>=0.1.3 <=0.1.4) +59 more potentially affected by CVE-2024-21624 via nonebot2 (>=2.0.0a16 <=2.1.3)

nonebot2 PYPI version =2.0.0a16, =2.5.0, =0.1.3, =1.2.0a0, =0.1.0, =0.1.0, =0.1.0, =0.3.4, =0.5.2, =2.0.0, =2.1.0 and more Source cves: CVE-2024-21624 Source advisory: OSV:GHSA-59J8-776V-XXXG...

6.5CVSS6.5AI score0.00492EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/08 12:0 a.m.25 views

EulerOS 2.0 SP9 : bison (EulerOS-SA-2023-2604)

According to the versions of the bison packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Bison before 3.5.4 allows attackers to cause a denial of service application crash. NOTE: there is a risk only if Bison is used with untruste...

5.5CVSS5.8AI score0.00401EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/08 12:0 a.m.23 views

EulerOS 2.0 SP9 : bison (EulerOS-SA-2023-2574)

According to the versions of the bison packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Bison before 3.5.4 allows attackers to cause a denial of service application crash. NOTE: there is a risk only if Bison is used with untruste...

5.5CVSS5.8AI score0.00401EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/08/08 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for bison (EulerOS-SA-2023-2604)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00401EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/08/08 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for bison (EulerOS-SA-2023-2574)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00401EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.3 views

SUSE CVE-2020-14150

GNU Bison before 3.5.4 allows attackers to cause a denial of service application crash. NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash...

5.5CVSS6.9AI score0.00401EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.5 views

SUSE CVE-2020-24240

GNU Bison before 3.7.1 has a use-after-free in obstackfree in lib/obstack.c called from gramlex when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug...

7.1CVSS7.1AI score0.01265EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for bison (EulerOS-SA-2022-2642)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS5.5AI score0.01265EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for bison (EulerOS-SA-2022-2674)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS5.5AI score0.01265EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/02 12:0 a.m.31 views

EulerOS 2.0 SP10 : bison (EulerOS-SA-2022-2674)

According to the versions of the bison packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Bison before 3.7.1 has a use-after-free in obstackfree in lib/obstack.c called from gramlex when a '\0' byte is encountered. NOTE: there is a...

7.1CVSS5.8AI score0.01265EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/02 12:0 a.m.26 views

EulerOS 2.0 SP10 : bison (EulerOS-SA-2022-2642)

According to the versions of the bison packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU Bison before 3.7.1 has a use-after-free in obstackfree in lib/obstack.c called from gramlex when a '\0' byte is encountered. NOTE: there is a...

7.1CVSS5.8AI score0.01265EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/05/17 6:28 a.m.19 views

new packages: bison

An update is available for bison. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

1.9AI score
Exploits0
OSV
OSV
added 2022/03/07 11:3 a.m.3 views

OESA-2022-1546 nodejs-jison security update

A parser generator with Bison's API. Security Fixes: Insufficient input validation in npm package jison = 0.4.18 may lead to OS command injection attacks.CVE-2020-8178...

10CVSS7.6AI score0.03633EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2021-0023)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00401EPSS
Exploits0References3
Veracode
Veracode
added 2021/04/29 12:13 p.m.32 views

Denial Of Service (DoS)

GNU Bison is vulnerable to denial of service. It has a use-after-free in obstackfree in lib/obstack.c called from gramlex when a '\0' byte is encountered...

5.5CVSS2.3AI score0.01265EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/01/14 3:13 p.m.11 views

MGASA-2021-0023 Updated bison packages fix a security vulnerability

It was discovered that GNU Bison before 3.5.4 allows attackers to cause a denial of service application crash CVE-2020-14150...

5.5CVSS5.3AI score0.00401EPSS
Exploits0References2
Mageia
Mageia
added 2021/01/14 3:13 p.m.41 views

Updated bison packages fix a security vulnerability

It was discovered that GNU Bison before 3.5.4 allows attackers to cause a denial of service application crash CVE-2020-14150...

5.5CVSS4.7AI score0.00401EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/09/10 12:42 p.m.29 views

CVE-2020-24979

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none Mitigation This flaw...

6.4AI score
Exploits0References3
Rows per page
Query Builder